Vulnerability Details CVE-2005-3288
Mailsite Express allows remote attackers to upload and execute files with executable extensions such as ASP by attaching the file using the "compose page" feature, then accessing the file from the cache directory before saving or sending the message.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 67.3%
CVSS Severity
CVSS v2 Score 5.0
Products affected by CVE-2005-3288
-
cpe:2.3:a:rockliffe:mailsite_express:*